Multiple SQL injection vulnerabilities in Web4Future News Portal allow remote attackers to execute arbitrary SQL commands via the ID parameter to (1) comentarii.php or (2) view.php.
Affected Software
Name |
Vendor |
Start Version |
End Version |
News_portal |
Web4future |
* |
* |
References